Wedge
Public area => Bug reports => The Pub => Archived fixes => Topic started by: Pandos on November 2nd, 2012, 02:41 PM
-
Unable to login as admin again. System reports:
suhosin[21222]: ALERT - configured request variable name length limit exceeded - dropped variable 'dd78fbbd1142=571e996b1fe103bebe1556b15d450505=571e996b1fe103bebe1556b15d450505=571e996b1fe103bebe1556b15d450505' (attacker '127.0.0.1', file '/.../.../.../.../index.php')
-
Curious. The variable is getting the session id inserted 3 times. Is this on the password confirmation form?
(And why is it marked as solved?)
-
*lol* try to insert code for php.ini in this post and it gives me an error about mismatced bbcode ;)
Just needet to edit some settings in php.ini to allow suhosin more vars
-
There's a bigger problem - there is nowhere that that code should be generated, which means there is still a problem - fixing php.ini like that doesn't solve the problem, it just hides it.
-
OK, removed Topic solved :)
For those who are interested:
edit php.ini and add the following:
; For translation manager to handle more inputs
suhosin.post.max_vars = 2000suhosin.
request.max_vars = 2000
; For URL handling
suhosin.request.max_totalname_length = 300
suhosin.request.max_varname_length = 300
suhosin.get.max_varname_length = 300
suhosin.get.max_name_length = 300
-
That doesn't solve the problem. That just masks it. But I have no idea what is generating the extra code - because I just checked and unless I'm doing something different to you (and I have no idea, you never told me how you had this error), I can't reproduce it.
-
This occured directly after enabling PrettyURLs. System told me to enter admin pass and output was the above.
So disabled PrettyURLs manually in DB but the error was still there.
Then i went to modify my php.ini and now it works.